OLÁ PESSOAL,BOM DIA A TODOS DA UNDER,ESTOU COM UM PEQUENO PROBLEMA,USO AQUI A VERSÃO 2.9.27 MKT COM WEB PROXY+HOTSPOT AMARRO IP+MAC EM LEASES
MAS FUNCIONAFA TUDO BLZ,MAS NA HORA DE LOGAR NA PAGINA DO GMAIL,OU NO ORKUT DEMORA MUITO PARA AUTENTICAR,AI TEM QUE FICAR ATUALIZANDO OU ATE MESMO VOLTAR E ATUALIZAR NOVAMENTE PARA ENTRAR NO ORKUT, VOU POSTAR AS REGRAS AQUI
SE ALGUEM SOUBER A SOLUÇÃO POR GENTILEZA ME AJUDEM....
aqui e do firewall
add chain=prerouting p2p=all-p2p action=mark-connection \
new-connection-mark=p2p passthrough=yes comment="P2P" disabled=no
add chain=prerouting connection-mark=p2p action=mark-packet \
new-packet-mark="p2p 2" passthrough=yes comment="" disabled=no
add chain=output protocol=tcp src-port=3128 content="X-Cache: HIT" \
action=mark-connection new-connection-mark="PROXY CONNECTION" \
passthrough=yes comment="PRXY FULL" disabled=no
add chain=output connection-mark="PROXY CONNECTION" action=mark-packet \
new-packet-mark="PROXY PACKET" passthrough=yes comment="" disabled=no
/ ip firewall nat
add chain=srcnat src-address=10.0.0.0/24 action=masquerade comment="masquerade \
hotspot network" disabled=no
add chain=pre-hotspot dst-address=200.221.0.0/16 action=accept comment="RADIO \
UOL" disabled=no
add chain=pre-hotspot dst-address=201.7.0.0/16 action=accept \
comment="GLOBO.COM" disabled=no
add chain=pre-hotspot dst-address=10.0.0.1 protocol=tcp dst-port=80 \
hotspot=auth action=redirect to-ports=64873 comment="Paginas de status do \
hotspot\"" disabled=no
add chain=pre-hotspot in-interface=bridge1 protocol=tcp dst-port=80 \
hotspot=auth action=redirect to-ports=3128 comment="REDIRECIONAMENTO DE \
PROXY HOTSPOT" disabled=no
/ ip firewall connection tracking
set enabled=yes tcp-syn-sent-timeout=5s tcp-syn-received-timeout=5s \
tcp-established-timeout=1d tcp-fin-wait-timeout=10s \
tcp-close-wait-timeout=10s tcp-last-ack-timeout=10s \
tcp-time-wait-timeout=10s tcp-close-timeout=10s udp-timeout=10s \
udp-stream-timeout=3m icmp-timeout=10s generic-timeout=10m \
tcp-syncookie=no
/ ip firewall filter
add chain=forward dst-address=10.0.0.0 protocol=tcp connection-limit=30,24 \
action=drop comment="limitar conex es por clientes" disabled=no
add chain=input in-interface=modem protocol=tcp dst-port=3128 action=drop \
comment="bloqueio de proxy externo" disabled=no
add chain=input connection-state=established action=accept comment="Accept \
established connections" disabled=no
add chain=input connection-state=related action=accept comment="Accept related \
connections" disabled=no
add chain=input protocol=udp action=accept comment="UDP" disabled=no
add chain=input protocol=icmp limit=50/5s,2 action=accept comment="Allow \
limited pings" disabled=no
add chain=input protocol=tcp dst-port=22 action=accept comment="SSH for secure \
shell" disabled=no
add chain=input protocol=tcp dst-port=8291 action=accept comment="winbox" \
disabled=no
add chain=input protocol=icmp icmp-options=8:0 limit=1,5 action=accept \
comment="DOS ATTACK" disabled=no
add chain=icmp protocol=icmp icmp-options=0:0 action=accept comment="drop \
invalid connections" disabled=no
add chain=icmp protocol=icmp icmp-options=3:0 action=accept comment="allow \
established connections" disabled=no
/ ip firewall service-port
set ftp ports=21 disabled=no
set tftp ports=69 disabled=yes
set irc ports=6667 disabled=yes
set h323 disabled=yes
set quake3 disabled=yes
set gre disabled=yes
set pptp disabled=yes
aqui e do cache full
/ ip web-proxy
set enabled=yes src-address=0.0.0.0 port=3128 hostname="proxy" \
transparent-proxy=yes parent-proxy=0.0.0.0:0 \
cache-administrator="[email protected]" max-object-size=80000KiB \
cache-drive=primary-master max-cache-size=74000000KiB \
max-ram-cache-size=512000KiB
/ ip web-proxy access
add dst-port=23-25 action=deny comment="block telnet & spam e-mail relaying" \
disabled=no
/ ip web-proxy cache
add url=":cgi-bin \\?" action=deny comment="no cache dynamic http pages" \
disabled=no
add url="https://" action=deny comment="no cache dynamic https pages" \
disabled=no
add url=":\\.mpeg\$" action=deny comment="" disabled=no
add url=":\\.avi\$" action=deny comment="" disabled=no
add url=":\\.pdf\$" action=deny comment="" disabled=no
add url=":\\.css\$" action=deny comment="" disabled=no
add url=":\\.mov\$" action=deny comment="" disabled=no
add url=":\\.mpg\$" action=deny comment="" disabled=no
add url=":\\.iso\$" action=deny comment="" disabled=no
add url=":\\.css\$" action=deny comment="" disabled=no
add url=":\\.bin\$" action=deny comment="" disabled=no
add url=":\\.dat\$" action=deny comment="" disabled=no
add url=":\\.swf\$" action=deny comment="" disabled=no
Agradeço desde já